Microsoft's October Patch Tuesday Addresses 117 Vulnerabilities, Including 5 Zero-Days
The latest security update includes fixes for actively exploited vulnerabilities in Microsoft Management Console and MSHTML.
Overview
- Microsoft released patches for 117 vulnerabilities, with two zero-day flaws actively exploited in attacks.
- The most critical vulnerabilities include remote code execution flaws in Microsoft Configuration Manager and Remote Desktop Protocol Server.
- Five zero-day vulnerabilities were addressed, with CVE-2024-43572 and CVE-2024-43573 being actively exploited.
- A significant portion of the update focuses on remote code execution vulnerabilities, comprising 36% of the total issues.
- Additional updates from other vendors, including Cisco and SAP, were also released as part of October's security patches.